OpenStack Identity (keystone)

Document Multi ldap support

Bug #1571001 reported by Adam Young
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
OpenStack Identity (keystone)
Invalid
Undecided
Unassigned

Bug Description

"When defining the URL for connecting to the LDAP server in the Keystone configuration, looking for a way to specify multiple LDAP servers for redundancy. For example if an AD domain controller were not available, Keystone would try an alternate domain controller."

This is suopported, but config comment does not indicatei t. Needs an update.

Revision history for this message
Steve Martinelli (stevemar) wrote :

is there something specific you had in mind that needed updating? the config option reads correctly IMO:

# URL(s) for connecting to the LDAP server. Multiple LDAP URLs may be specified
# as a comma separated string. The first URL to successfully bind is used for
# the connection. (string value)

https://github.com/openstack/keystone/blob/master/etc/keystone.conf.sample#L965-L968

Revision history for this message
sandeep nandal (nandal) wrote :

Hi Adam,

Kindly look at the following in configuration file for multi LDAP server URLs.

# URL(s) for connecting to the LDAP server. Multiple LDAP URLs may be specified
# as a comma separated string. The first URL to successfully bind is used for
# the connection. (string value)
#url = ldap://localhost

https://github.com/openstack/keystone/blob/master/etc/keystone.conf.sample#L875-L878

if there is something specific in your mind, then please discuss

sandeep nandal (nandal)
Changed in keystone:
status: New → Invalid
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.